Security Advisory 2021-050

Release Date:

Critical Vulnerability in Citrix ShareFile



  • 15/09/2021 --- v1.0 -- Initial publication


On September 14, Citrix released a Security Bulletin [1] to address a critical security issue identified in Citrix ShareFile storage zones controller. If the vulnerability identified as CVE-2021-22941 is exploited, it could allow an unauthenticated attacker to remotely compromise the storage zones controller [1].

Citrix recommends to upgrade the affected product as soon as possible.

Technical Details

The vulnerability is tracked as CVE-2021-22941 and no technical details were shared by Citrix at the initial publication of the Security Bulletin.

Products Affected

All currently supported versions of Citrix ShareFile storage zones controller before 5.11.20 are affected by this issue.


This issue has been addressed in the following versions of Citrix ShareFile storage zones controller:

  • ShareFile storage zones controller 5.11.20 and later versions

Update is available [1, 2]. CERT-EU recommends to update the affected product as soon as possible.




We got cookies

We only use cookies that are necessary for the technical functioning of our website. Find out more on here.